nimrodpar / Obfvious
☆14Updated 4 years ago
Alternatives and similar repositories for Obfvious:
Users that are interested in Obfvious are comparing it to the libraries listed below
- .lib file for linking against the NT CRT☆18Updated 3 years ago
- Code Integrity Violation Spotter☆16Updated 9 months ago
- Windbg extension that allows you analyze Control Flow Guard map☆34Updated 3 years ago
- Dump PDB Symbols including support for Bochs Debugging Format (with wine support)☆15Updated last year
- Static library and headers for linking your software with ntdll.dll☆32Updated 5 years ago
- hooking KiUserApcDispatcher☆24Updated 7 years ago
- Headers for linking your software with ntdll.dll☆15Updated 4 years ago
- Figuring out the cause of a handle downgrade☆24Updated 2 years ago
- A wrapper for capstone for bearparser☆13Updated 2 years ago
- ☆13Updated 3 years ago
- ☆29Updated 3 years ago
- Panda - is a set of utilities used to research how PsExec encrypts its traffic.☆12Updated 3 years ago
- ☆15Updated 2 years ago
- ☆12Updated last year
- Windows x86 Hardware Breakpoint class for Windows >Vista☆22Updated 8 years ago
- Allows you to add breakpoints from IDA (from the graph/text view) to WinDbg easily☆14Updated 6 years ago
- Helper Script to convert a Windbg dumped structure (using the 'dt' command) into a C structure. It creates dummy structs for you if neede…☆26Updated last year
- Basic utilities for executing, reading and writing 64-bit data in a 32-bit WoW64 process☆17Updated 2 years ago
- Software Distribution Service☆12Updated 9 years ago
- Kernel-mode file scanner☆18Updated 6 years ago
- Using Undocumented NTDLL Functions to Read/Write/Delete File☆18Updated 4 years ago
- allowing um r/w through km from um ioctl ™☆11Updated 3 years ago
- A driver to implement IOCTL hooking☆24Updated 3 years ago
- Bypass for the hardening against usage of tagWnd as a kernel read/write primitive☆29Updated 7 years ago
- Just an example of a well-known technique to detect memory tampering via Windows Working Sets.☆16Updated 3 years ago
- Obtain remote process cookies by performing a brute-force attack on ntdll.RtlDecodePointer using known pointer encodings.☆22Updated 7 years ago
- Windows Broken Stack Guard Page☆11Updated 2 years ago
- A Binary Ninja plugin to deobfuscate Themida, WinLicense and Code Virtualizer 3.x's mutation-based obfuscation.☆26Updated 7 months ago
- ☆16Updated 5 years ago